عوامل‌کلیدی ارتقاء توانمندی فناورانه امنیت سایبری در زیرساخت‌های حیاتی

The rapid advancement of information and communication technology has caused service companies, as a critical infrastructure, to face an increasing prevalence, severity, and complexity of cyber-attacks, which requires greater focus on cybersecurity. Therefore, the present study, using a multi-method qualitative approach (thematic analysis and fuzzy Delphi), has extracted, categorized, and interpreted key themes for improving cybersecurity technological capabilities. Accordingly, first, by studying and analyzing the literature on information technology capabilities and conducting semi-structured interviews with 10 managers and industrial and academic experts, and using a thematic analysis approach, technological capabilities in the field of cybersecurity were identified and categorized into 5 organizing themes and 36 basic themes. Then, the fuzzy Delphi questionnaire was distributed among 25 experts and the importance of each criterion was determined. Due to duplication or integration with other factors, 9 factors from the set of key factors of cybersecurity technological capability were screened, and ultimately, 27 basic themes or key factors were confirmed. The results showed that cybersecurity technological capability consists of 5 organizing themes, including human resource capability with 4 basic themes, organizational process capability with 3 basic themes, technical and security infrastructure capability with 9 basic themes, strategic and managerial capability with 6 basic themes, and key stakeholder security capability with 5 basic themes.